further debugging (TOKEN LEAK)

Author: CodeShellDev

internals/proxy/middlewares/auth.go

@@ -53,8 +53,6 @@ func (data AuthMiddleware) Use() http.Handler {
 
 		authQuery := req.URL.Query().Get("@authorization")
 
-		log.Debug("AuthQuery: ", authQuery)
-
 		var authType authType = None
 
 		success := false
@@ -66,34 +64,34 @@ func (data AuthMiddleware) Use() http.Handler {
 			authToken := authBody[1]
 
 			switch authType {
-			case Bearer:
-				if isValidToken(tokens, authToken) {
-					success = true
-				}
+				case Bearer:
+					if isValidToken(tokens, authToken) {
+						success = true
+					}
 
-			case Basic:
-				basicAuthBody, err := base64.StdEncoding.DecodeString(authToken)
+				case Basic:
+					basicAuthBody, err := base64.StdEncoding.DecodeString(authToken)
 
-				if err != nil {
-					log.Error("Could not decode Basic Auth Payload: ", err.Error())
-				}
+					if err != nil {
+						log.Error("Could not decode Basic Auth Payload: ", err.Error())
+					}
 
-				basicAuth := string(basicAuthBody)
-				basicAuthParams := strings.Split(basicAuth, ":")
+					basicAuth := string(basicAuthBody)
+					basicAuthParams := strings.Split(basicAuth, ":")
 
-				user := "api"
+					user := "api"
 
-				if basicAuthParams[0] == user && isValidToken(tokens, basicAuthParams[1]) {
-					success = true
-				}
+					if basicAuthParams[0] == user && isValidToken(tokens, basicAuthParams[1]) {
+						success = true
+					}
 			}
 
 		} else if authQuery != "" {
 			authType = Query
 
 			authToken, _ := url.QueryUnescape(authQuery)
 
-			log.Debug("AuthToken: ", authToken)
+			log.Debug(tokens...)
 
 			if isValidToken(tokens, authToken) {
 				success = true